CVEs-PoC/2008/CVE-2008-3431.md at dc3bd6cd71a486f862e7cf4da52fce4cfeb10e52

CalvinBackup/CVEs-PoC

Fork 0

mirror of https://github.com/0xMarcio/cve.git synced 2026-05-08 06:06:44 +02:00

Files

T

0xMarcio 48a00929ac Removed duplicates

2024-06-18 02:51:15 +02:00

Description

The VBoxDrvNtDeviceControl function in VBoxDrv.sys in Sun xVM VirtualBox before 1.6.4 uses the METHOD_NEITHER communication method for IOCTLs and does not properly validate a buffer associated with the Irp object, which allows local users to gain privileges by opening the \.\VBoxDrv device and calling DeviceIoControl to send a crafted kernel address.

POC

Reference

http://securityreason.com/securityalert/4107
http://www.coresecurity.com/content/virtualbox-privilege-escalation-vulnerability
https://www.exploit-db.com/exploits/6218

Github

https://github.com/Ostorlab/KEV
https://github.com/Ostorlab/known_exploited_vulnerbilities_detectors
https://github.com/todb-cisa/kev-cwes

1.0 KiB Raw Blame History

CVE-2008-3431

Description

POC

Reference

Github

1.0 KiB

Raw Blame History